Symantec repaired the flaw that could allow for system corruption in Norton Antivirus v10, as recently pointed out by eEye Digital Security Inc.
Symantec Corporation stated that the patch is available by the LiveUpdate features.
Vince Weafer, senior director for Symantec's security response unit:
"Symantec is a company used to responding rapidly."
The e-eye website said that "a remotely exploitable vulnerability exists within the Symantec Antivirus program. This flaw does not require any end user interaction for exploitation and can compromise affected systems, allowing for the execution of malicious code with SYSTEM level access." However, only Symantec Antivirus 10.x and Symantec Client Security 3.x appeared to be at risk, while consumer-oriented versions were not vulnerable to the security flaw.
Marc Maiffret, eEye Digital Security executive commented on the first announcement regarding the Symantec security threat:
"People shouldn't panic. There shouldn't be any exploits until a patch is produced."
And he was right, as Symantec quickly dealt with the security issue, as stated by the same Maiffret:
"I can't believe they were able to turn that around so fast, definitely a good job for them."
eEye Digital Security, is a leading developer of endpoint security and vulnerability management software solutions.
eEye's customers, Citigroup and US Department of Defense, represent the largest deployments of vulnerability assessment and prevention technology in the private and public sector.
eEye protects the networks and digital assets of more than 8,500 corporate and government deployments worldwide, including EDS, Avon, Continental Airlines, Dow Jones, Prudential, University of Miami, Viacom, Vodafone, Warner Music and Wyeth. eEye Digital Security is a privately held, venture-backed firm with headquarters in Orange County, California.
» Symantec Antivirus Endangers Users' PC, eEye Report Shows
» McAfee Fixes Serious Security Flaw In Own Software
» Yahoo Offers Symantec's Norton Antivirus For Free
» Symantec Warns of MS Word 2003 Exploit
» F-Secure Warns About Rookit in Symantec Software
» Symantec Warns About New Windows Metafile Vulnerabilities
» Symantec Announces 2006 Versions Of Its Software
» Symantec Sues Microsoft Over Vista